General
-
Target
40a6af8944430b4f6a5c647543678c15e01fc7987c673417c84a00e241e6ee6e
-
Size
3.4MB
-
Sample
221125-2nvlxsfd3v
-
MD5
4a4f238ca81f79efa88b2d72f1fa4628
-
SHA1
23a01e27770809e24b9987aeee8e1a10266c909a
-
SHA256
40a6af8944430b4f6a5c647543678c15e01fc7987c673417c84a00e241e6ee6e
-
SHA512
11531d59c2a87d2f337a63613a0a6a77666e5427b4d93695b16c8796756e6f2bd321aef38fa7fa042ed26e8f744c5c7d5565c38d1489714b861dc5c2fa35c368
-
SSDEEP
98304:W3yobVyq03fv0oKATM6A/7zf8iEFb1OL6PVgNZzT:syey13EoXM68vHO5fPeNZP
Malware Config
Targets
-
-
Target
40a6af8944430b4f6a5c647543678c15e01fc7987c673417c84a00e241e6ee6e
-
Size
3.4MB
-
MD5
4a4f238ca81f79efa88b2d72f1fa4628
-
SHA1
23a01e27770809e24b9987aeee8e1a10266c909a
-
SHA256
40a6af8944430b4f6a5c647543678c15e01fc7987c673417c84a00e241e6ee6e
-
SHA512
11531d59c2a87d2f337a63613a0a6a77666e5427b4d93695b16c8796756e6f2bd321aef38fa7fa042ed26e8f744c5c7d5565c38d1489714b861dc5c2fa35c368
-
SSDEEP
98304:W3yobVyq03fv0oKATM6A/7zf8iEFb1OL6PVgNZzT:syey13EoXM68vHO5fPeNZP
Score8/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-